[JOSS Review] Authentication guards for flask_restx APIs

fairdataihub / SODA-for-SPARC

Simplifying data curation for researchers funded by the NIH SPARC initiative

https://fairdataihub.org/sodaforsparc

MIT License

28 stars 9 forks source link

[JOSS Review] Authentication guards for flask_restx APIs #298

Open abhishektiwari opened 7 months ago

abhishektiwari commented 7 months ago

How is the flask_restx APIs under api folder protected. Unless I am missing something, I don't see authentication or authorisation enforced on these API operations and this could be a security risk.

JOSS Review

fairdataihub-bot[bot] commented 7 months ago

Hello! Thank you for opening this issue. Your input is valuable and helps improve the project. Can you please provide a detailed description of the problem you're encountering? Any additional information such as steps to reproduce the issue would be greatly appreciated. Thank you!

aaronm-2112 commented 4 months ago

Hi, @abhishektiwari thanks for opening this issue. We have a milestone to address this kind of thing this year but it is being pushed back due to other priorities. For now I will leave this issue open and close it once we have had the time to resolve it.

Thanks you!